Vulnerability Management and Security Scanning Tools & Resources

Continuous Monitoring

Security Assessment

S4E

A continuous threat exposure management platform that provides automated vulnerability scanning for internet-facing assets with varying service tiers for different organizational needs.

0

Commercial

+7

Bima Scanner

An automated web application security scanner that evaluates JavaScript library vulnerabilities and HTTP security headers to assess website security posture.

1

Web Security

Vulnerability Assessment

Web App Security

Scanner

Security Analysis

Vulnerability Detection

Javascript

Bima Scanner

An automated web application security scanner that evaluates JavaScript library vulnerabilities and HTTP security headers to assess website security posture.

1

Web Security

+6

aemscan

A tool for scanning Adobe Experience Manager instances for potential security vulnerabilities

0

Vulnerability Scanner

Dynamic Analysis

aemscan

A tool for scanning Adobe Experience Manager instances for potential security vulnerabilities

0

Vulnerability Scanner

+1

kube-hunter is a security scanning tool that identifies vulnerabilities and security weaknesses in Kubernetes clusters through automated assessment and provides detailed reporting with remediation guidance.

0

Kubernetes

Kubernetes Security

Vulnerability Assessment

Vulnerability Detection

kube-hunter

kube-hunter is a security scanning tool that identifies vulnerabilities and security weaknesses in Kubernetes clusters through automated assessment and provides detailed reporting with remediation guidance.

0

Kubernetes

Kubernetes Security

+7

oscap-docker

A container compliance and vulnerability assessment tool that uses OpenSCAP to scan Docker images and running containers for security vulnerabilities and compliance violations.

0

Compliance

Vulnerability Assessment

oscap-docker

A container compliance and vulnerability assessment tool that uses OpenSCAP to scan Docker images and running containers for security vulnerabilities and compliance violations.

0

+7

Docker Bench for Security

An open-source script that performs automated security assessments of Docker containers and hosts against CIS Docker Benchmark standards.

0

Docker Bench for Security

An open-source script that performs automated security assessments of Docker containers and hosts against CIS Docker Benchmark standards.

0

Docker Security

+7

Dockerscan

A Docker security analysis tool that scans containers and networks to identify vulnerabilities and security weaknesses in Docker environments.

0

Docker Security

Vulnerability Scanner

Dockerscan

A Docker security analysis tool that scans containers and networks to identify vulnerabilities and security weaknesses in Docker environments.

0

Docker Security

+7

tfsec to Trivy Migration

tfsec is being replaced by Trivy, a more comprehensive open-source security solution

0

tfsec to Trivy Migration

tfsec is being replaced by Trivy, a more comprehensive open-source security solution

0

Clair

Clair is an open source static analysis tool that scans application containers for known vulnerabilities through API-based image indexing and matching.

0

Vulnerability Detection

Clair

Clair is an open source static analysis tool that scans application containers for known vulnerabilities through API-based image indexing and matching.

0